HiringCafe
Posted 3w ago

Senior Cloud & Azure Systems Engineer

@ Physicians of Southwest Washington
View All Jobs
Olympia, Washington, United States
$132k-$161k/yrHybridFull Time
Responsibilities:architect Azure, manage identity, enforce security
Requirements Summary:5+ years in Azure/M365/Entra ID with security focus; Bachelor's degree; strong PowerShell and scripting skills; healthcare security experience preferred.
Technical Tools Mentioned:PowerShell, Graph API, Automation tools, Azure Monitor, Log Analytics, Sentinel
Save
Mark Applied
Hide Job
Report & Hide
Job Description

Description

Summary / Objective: 
The Senior Cloud & Azure Systems Engineer is responsible for architecting, operating, and securing the organization’s Azure and Microsoft 365 environment with a strong focus on cloud-first design, identity governance, automation, and modern endpoint management. This role provides senior-level leadership in Azure infrastructure engineering, identity and access management, cloud networking, hybrid integrations, and enterprise security controls.
The engineer will drive modernization initiatives, ensure operational reliability across cloud services, and optimize performance in accordance with industry and healthcare security standards.

Essential Functions: 
•    Strong networking skills, including WAN/VPN/VLAN/VNET.
•    Strong PowerShell experience and ability to understand other scripting languages.
•    Understanding of healthcare industry security practices (HIPAA/HITRUST), including zero-trust and MFA. 
•    Develop, implement and test business continuity and disaster recovery plans.
•    Stays informed of industry trends and actively participates in trainings provided by PSW.
•    Architect, implement, and manage Azure infrastructure services including Azure AD/Entra ID, networking, compute, storage, backup, policies, and RBAC.
•    Lead the modernization and migration of on-premises services into Azure-native or hybrid solutions.
•    Design secure, scalable architectures aligned with zero-trust, least privilege, and MFA enforcement.
•    Build and maintain Azure governance frameworks (blueprints, landing zones, tagging, cost controls).
•    Manage Azure Active Directory/Entra ID, including Conditional Access, MFA, identity lifecycle, SSO, and app registrations.
•    Architect and support identity synchronization technologies including AAD Connect, Password Hash Sync, and federation as needed.
•    Implement enterprise security policies across Azure, M365, Intune, and endpoint configurations.
•    Ensure compliance with HIPAA/HITRUST, cloud security baselines, logging and audit retention.
•    Engineer and support Microsoft 365 workloads (Exchange Online, SharePoint Online, Teams, Intune).
•    Design and implement automated licensing assignments using Azure AD security groups and dynamic rules.
•    Implement Intune-based device management (MDM) and app protection (MAM) policies, including RBAC for operations administrators.
•    Manage configuration profiles, compliance policies, and modern endpoint provisioning.
•    Maintain and optimize cloud operations using Azure Monitor, Log Analytics, Sentinel, and alerts.
•    Troubleshoot performance, authentication, and application integration issues across Azure and M365.
•    Develop scripts and automation workflows leveraging PowerShell, Graph API, and automation runbooks.
•    Proactively identify issues, mitigate risks, and ensure minimal downtime and high availability.
•    Support hybrid integrations and legacy systems including Windows Server, Hyper-V/VMM, SCCM, SQL, networking, and SAN storage.
•    Assist with VoIP, VPN, and LAN/WAN where integration intersects with cloud identity or Azure networking.
•    Implement solutions that meet regulatory requirements (HIPAA/HITRUST).
•    Develop, test, and maintain business continuity and disaster recovery plans for cloud and hybrid workloads.
•    Maintain documentation, standards, runbooks, and architecture diagrams.
•    Communicate complex cloud and identity concepts clearly to technical and non-technical audiences.
•    Work independently on assigned projects and meet operational deadlines.

Knowledge/Skills/Abilities:
•    Set a positive example by displaying an approachable demeanor, always remaining friendly and courteous. 
•    Proactive team player, strong follow-through, quick decision-making abilities and ability to solve problems.
•    Interpersonal skills, with the ability to build strong relationships at all levels.
•    Strong verbal and written communication skills with partners, supervisors and co-workers.
•    Strong organizational, time management and prioritization skills.
•    Self-starter.  Ability to set priorities and keep to projected schedules.
•    Results-oriented, strategic thinker and planner.
•    Deep expertise with Azure, Microsoft 365, and modern cloud engineering.
•    Strong understanding of identity management, zero-trust principles, and cloud security.
•    Proactive, analytical problem solver with strong follow-through and decision-making skills.
•    Excellent interpersonal, verbal, and written communication skills.
•    Strong organizational and time-management skills.
•    Advanced proficiency with Microsoft Office and the ability to maintain accurate technical records.
•    High-level PowerShell scripting and ability to understand other scripting languages.

Requirements

Required Education and/or Work Experience: 
•    Bachelor's degree in computer or information science, or equivalent relevant experience.
•    Minimum of 5+ years engineering and operating solutions in Azure, Microsoft 365, and Entra ID.
•    Experience with Exchange Online, SharePoint Online, Teams, and cloud-based identity and security controls.

Preferred Education and/or Work Experience: 
•    5+ years as a Cloud or Systems Engineer.
•    Azure or Microsoft certifications (AZ-104, AZ-305, SC-300, MS-102, etc.).
•    Experience with on-premises infrastructure, hybrid AD, and datacenter operations.
•    Experience with Hyper-V/VMM, Windows Server, and enterprise networking.
•    Background in healthcare IT and familiarity with HIPAA/HITRUST.
•    Experience designing enterprise-grade BCDR strategies for cloud workloads.

Required Certificates, Licenses and Registrations: 
•    Valid driver’s license.
•    Proof of auto insurance.

 

*PSW does not typically hire at the top of the pay range *

Summary

Benefits:

  • 401(k)
  • 401(k) matching
  • Dental insurance
  • Disability insurance
  • Flexible Spending Account (FSA)
  • Health Savings Account (HSA)
  • Health insurance
  • Life insurance
  • Paid time off
  • Tuition reimbursement
  • Vision insurance